Vulnerabilities > Flarum > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-16 | CVE-2023-40033 | Unspecified vulnerability in Flarum Flarum is an open source forum software. | 7.1 |
| 2019-07-07 | CVE-2019-13183 | Cross-Site Request Forgery (CSRF) vulnerability in Flarum 0.1.0 Flarum before 0.1.0-beta.9 allows CSRF against all POST endpoints, as demonstrated by changing admin settings. | 8.8 |
| 2019-04-25 | CVE-2019-11514 | Incomplete Cleanup vulnerability in Flarum 0.1.0 User/Command/ConfirmEmailHandler.php in Flarum before 0.1.0-beta.8 mishandles invalidation of user email tokens. | 7.5 |